Website • LinkedIn • 📧 john.edward.burns.jr@gmail.com

I’m a security-focused IT systems engineer with 10+ years of experience in infrastructure, automation, and cybersecurity operations.
My work bridges hands-on engineering and clear communication — I design, secure, and document systems that scale.

Currently focused on:

• 🧱 Infrastructure as Code (IaC) with Terraform & Azure ARM templates
• ☁️ Cloud Security Architecture (AWS + Azure)
• 🔐 Identity & Access Management (IAM) and Zero Trust alignment
• 🧩 Security Automation with PowerShell, Python & SIEM integrations
• 📜 Compliance Mapping to NIST 800-53 and CIS Benchmarks
• 🧠 Incident Response & Detection Engineering (Splunk, Wazuh, MITRE ATT&CK)

A minimal, compliant AWS workload designed for security from the start.

Highlights

• Infrastructure as Code deployment using Terraform
• Hardened AWS EC2 with least-privilege IAM roles
• CloudWatch & GuardDuty integration
• Documentation mapped to NIST 800-53 (AC, AU, SI, SC families)

📄 System Security Requirements Document
📁 View Terraform Code

Simplifying and securing identity lifecycles across Azure AD (Entra ID) and Okta.

Includes

• PowerShell scripts for group lifecycle and MFA enforcement
• Automated access reviews & compliance reports
• RBAC mapping and zero-trust documentation

📄 IAM Policy Documentation Samples
🧩 PowerShell Automation Scripts

Home SOC-style project focusing on real-time visibility and automated response.

Stack Splunk • Wazuh • Windows Server • Ubuntu • MITRE ATT&CK

What I Built

• Automated log ingestion with PowerShell → Splunk
• Detection logic for failed logins & PowerShell abuse
• Auto-response script: disable user after failed login attempts
• Visualization dashboards for alert monitoring

📝 Detection Rule Logic (Splunk)
🗂️ Incident Response Playbooks (Markdown)

Streamlining vulnerability detection, patching, and documentation.

Tools PowerShell • Nessus • OpenVAS • Excel Automation

Features

• PowerShell patch automation
• Vulnerability scan mapping to NIST controls
• Continuous monitoring dashboards
• Change logs & remediation documentation

📈 Remediation Report Template
🗂️ Change Logs with Compliance Notes

A hybrid SOC environment integrating Splunk, Wazuh, and cloud telemetry.

Core Capabilities

• End-to-end visibility (Windows + Linux endpoints)
• Automated alerts and ticket creation
• MITRE ATT&CK-based detection testing
• Scripted backup and restore functions

🧩 Lab Diagram & Setup Guide
📁 Automation Scripts & Configs

Recent Topics

• How to Build a Home SOC for Under $20
• The Hidden Value of Documentation in Security Engineering
• What My 90-Day Lab Sprint Taught Me About Detection Engineering

📖 Read more at johnedwardburns.com

• CI/CD security scans via GitHub Actions
• Terraform + AWS Config continuous compliance checks
• Automated IaC compliance checker (Python)
• Blue-Team playbook library (Markdown format)

Helping non-technical teams and parents understand the basics of cybersecurity.
Follow my journey at johnedwardburns.com

• 📫 Email: john.edward.burns.jr@gmail.com
• 🧾 LinkedIn: linkedin.com/in/johneburnsjr

✅ Deploy a containerized app in AWS using Terraform + Kubernetes
✅ Write and publish an SSP example with mapped controls
✅ Create CI/CD security guidance for small organizations